Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/AmHkvm73L7WuRs2OBkCuUN3ylao.roa
File: AmHkvm73L7WuRs2OBkCuUN3ylao.roa (raw, json)
Hash identifier: mk6A7F32UtKijP2YOQDh8IbbK8Vw0IDJK2YgMl3UZWk=
Subject key identifier: 02:61:E4:BE:6E:F7:2F:B5:AE:46:CD:8E:06:40:AE:50:DD:F2:95:AA
Certificate issuer: /CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Certificate serial: 019472D90250A25DBB730979F35EA1FE33D1
Authority key identifier: 8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/AmHkvm73L7WuRs2OBkCuUN3ylao.roa
Signing time: Fri 17 Jan 2025 06:00:11 +0000
ROA not before: Fri 17 Jan 2025 06:00:11 +0000
ROA not after: Wed 01 Jul 2026 00:00:00 +0000
asID: 62240
IP address blocks: 45.8.17.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:94:72:d9:02:50:a2:5d:bb:73:09:79:f3:5e:a1:fe:33:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8fc69646457a8bf8ef9569b9b427e9f2c462e56e
Validity
Not Before: Jan 17 06:00:11 2025 GMT
Not After : Jul 1 00:00:00 2026 GMT
Subject: CN=0261e4be6ef72fb5ae46cd8e0640ae50ddf295aa
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:bc:92:af:6a:2f:9d:4f:95:69:b6:07:93:bf:
9c:30:d7:16:9d:6d:5c:c1:e0:04:79:07:78:34:60:
c8:78:c8:c8:e0:3f:80:5c:73:f6:19:aa:87:6c:65:
b2:47:90:c7:ce:a5:21:85:38:95:1d:99:fb:90:c0:
bf:62:6d:07:8b:bb:47:82:d0:21:ea:1b:fb:21:96:
5f:b8:f2:09:58:c0:11:c2:59:21:22:f6:a8:7e:1a:
b8:e7:67:0b:5e:b3:91:4d:c4:99:4e:05:97:c5:70:
ef:3a:11:25:22:af:b2:73:7c:03:d6:e2:e6:0b:0c:
ea:93:0a:b2:a4:7c:65:81:c0:da:b7:3f:8c:53:9d:
07:80:1b:41:b2:ea:67:02:cd:cb:65:86:1e:5a:6f:
92:32:7e:c4:c5:57:45:fd:8c:9b:e6:c3:74:39:29:
97:46:64:aa:3c:ac:a1:f5:ed:bc:9a:f3:f5:a0:6f:
90:a9:b9:3a:1a:9e:04:f9:b6:fa:b2:47:17:5a:58:
c9:dd:9f:63:7d:13:18:67:48:6c:7b:9f:69:3d:06:
64:bd:d6:9c:1e:78:fd:67:bc:56:fe:00:fb:33:cf:
4f:d4:1a:44:85:83:e8:4d:bd:21:21:de:af:ef:5b:
45:43:a2:85:68:3b:7f:dd:84:7d:0e:82:f7:31:84:
ac:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
02:61:E4:BE:6E:F7:2F:B5:AE:46:CD:8E:06:40:AE:50:DD:F2:95:AA
X509v3 Authority Key Identifier:
keyid:8F:C6:96:46:45:7A:8B:F8:EF:95:69:B9:B4:27:E9:F2:C4:62:E5:6E
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/j8aWRkV6i_jvlWm5tCfp8sRi5W4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/AmHkvm73L7WuRs2OBkCuUN3ylao.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/77/9fab5c-e138-4ef6-8799-b0b35a34e388/1/j8aWRkV6i_jvlWm5tCfp8sRi5W4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.8.17.0/24
Signature Algorithm: sha256WithRSAEncryption
9b:22:b7:02:ff:98:5e:4b:72:b8:c7:4d:ec:cb:b9:6e:fe:1a:
8d:8f:96:b9:c7:4a:c2:f0:a2:82:c8:e3:3f:22:90:f3:70:dd:
d7:10:16:d3:39:12:88:45:24:ad:a4:0f:ef:18:61:2f:04:cc:
99:59:cc:ee:76:e2:c0:b3:47:17:6b:9c:cb:44:d2:58:48:a1:
82:e1:cf:01:79:0d:93:36:7a:36:91:15:7c:c2:26:f0:a0:b6:
0c:d0:1b:ee:f6:52:da:90:bb:cb:80:de:3d:d2:ff:f0:82:58:
92:a3:d7:ef:8f:99:d2:9b:06:8d:b9:22:52:b2:da:05:08:7b:
6f:7b:29:04:22:b7:a6:30:3a:4e:f0:09:a3:6d:69:ab:00:9a:
7a:3c:fd:43:d1:70:23:ca:4e:49:d2:2b:84:64:67:f9:55:40:
62:8a:68:bf:6e:92:9c:a3:01:fe:57:7f:59:71:79:c3:94:6e:
12:c5:31:4c:5f:a9:6d:36:15:2e:3f:16:57:3e:7f:d9:80:59:
31:ba:9e:86:d3:45:66:70:d1:f9:ad:69:8f:ac:3e:49:ea:4e:
96:81:8b:df:ae:5a:06:95:de:23:7d:b0:a1:ec:4b:49:60:56:
16:f8:96:65:69:27:41:90:58:cd:7a:0c:06:22:e3:35:f0:a1:
07:23:25:f9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 3 22:12:46 2025 by rpki-client